Analyzing the Risk of Authenticity Violation Based on the Structural and Functional Sizes of UML Sequence Diagrams
详细信息 查看全文
- 关键词:ISO 25010 quality model ; Security ; Authenticity measures ; Design phase ; Structural Size Measurement ; Functional Size Measurement
- 刊名:Lecture Notes in Computer Science
- 出版年:2017
- 出版时间:2017
- 年:2017
- 卷:10158
- 期:1
- 页码:46-59
- 丛书名:Risks and Security of Internet and Systems
- ISBN:978-3-319-54876-0
- 卷排序:10158
文摘
Paying attention to authenticity, as a security requirement, in the early phases of the software life-cycle (such as requirement and-or design) can save project cost, time, and effort. However, in the ISO 25010 quality model which describes quality sub-characteristics, authenticity measures are not explicitly described, neither are they documented with sufficient details. This paper proposes a clear and precise way of measuring the “authenticity” sub-characteristic based on structural and functional size measurements. This combination can be used to identify the risk of authenticity violation in the design phase. An example of Facebook Web User Authentication is used to illustrate our proposed measurement.